Description
Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files.
Remediation
References
Related Vulnerabilities
MySQL CVE-2018-3156 Vulnerability (CVE-2018-3156)
WordPress Plugin WP Admin UI Customize Cross-Site Scripting (1.5.2.6)
Oracle JRE CVE-2013-5849 Vulnerability (CVE-2013-5849)
WordPress Plugin Forminator-Contact Form, Payment Form & Custom Form Builder SQL Injection (1.29.2)
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2032)